Hello. I'm looking for information on the way ITIL drives HIPAA compliance. For example, in regards to Change Management, Incident Management, Problem Management, etc. How the creation of these proceses and other aspects of ITIL (Service Level Mgmt., et al.) drive and assure HIPAA compliance. Any information will be appreciated. Thanks!!_________________audentes fortuna juvat

ITIL itself does not really drive compliance. You might want to look more at CObIT. However, having the ITIL disciplines implemented helps to enforce compliance by putting checks and balances, as well as process based controls in place. ITIL is one mechanism by which you can turn CObIT into reality (the opposite is true also).